CVE-2007-0251

{"id": "CVE-2007-0251", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2007-01-16T23:28:00.000", "references": [{"url": "http://labs.calyptix.com/advisories/CX-2007-01.txt", "source": "cve@mitre.org"}, {"url": "http://osvdb.org/32095", "source": "cve@mitre.org"}, {"url": "http://osvdb.org/33464", "source": "cve@mitre.org"}, {"url": "http://securityreason.com/securityalert/2165", "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1017507", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/456598/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/22004", "source": "cve@mitre.org"}, {"url": "http://www.snort.org/got_source/source.html", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2007/0152", "source": "cve@mitre.org"}, {"url": "http://labs.calyptix.com/advisories/CX-2007-01.txt", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://osvdb.org/32095", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://osvdb.org/33464", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securityreason.com/securityalert/2165", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securitytracker.com/id?1017507", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/archive/1/456598/100/0/threaded", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/22004", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.snort.org/got_source/source.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2007/0152", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Integer underflow in the DecodeGRE function in src/decode.c in Snort 2.6.1.2 allows remote attackers to trigger dereferencing of certain memory locations via crafted GRE packets, which may cause corruption of log files or writing of sensitive information into log files."}, {"lang": "es", "value": "Desbordamiento inferior de entero en la funci\u00f3n DecodeGRE en src/decode.c en Snort 2.6.1.2 permite a atacantes remotos provocar referencias a ciertas localizaciones de memoria mediante paquetes GRE artesanales, lo cual puede causar la corrupci\u00f3n de ficheros de log o la escritura de informaci\u00f3n sensible en ficheros de log."}], "lastModified": "2024-11-21T00:25:21.370", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:snort:snort:2.6.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CE956C2B-8647-497B-A4C1-05A526629B97"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}